RSA Buys Encryption Vendor, Inks Resell Deals With Others

RSA on Tuesday said it bought Valyd Software, a Hyderabad, India-based developer of software that encrypts data at rest and in motion, for an undisclosed sum. Valyd's KeepSecure data encryption suite includes SecureDB, which encrypts data stored in databases; SecureFS, which encrypts data in files and directories; and SecureApp, which encrypts data at the application level.

RSA also signed agreements to resell appliances and software from three data encryption developers: Decru, Redwood City, Calif.; CipherOptics, Raleigh, N.C.; and NeoScale Systems, Milpitas, Calif.

RSA, the security division of storage giant EMC, unveiled the moves at this week's RSA Conference in San Francisco.

RSA's moves reflect the storage and security sectors' push to find new ways to beef up protection of customer data. One path vendors are taking is encryption of data, either in its primary location, on backup devices or as it moves across a corporate network.

Mark Teter, CTO of Advanced Systems Group, a Denver-based solution provider, said RSA's moves are just what the industry needs to help customers grasp the relationship between storage and security.

"This is what the security business has always needed," Teter said. "How long have we been talking about data vulnerabilities and data risk? Data security has been an obscure topic. Now these partnerships will put wind in its sails."

Earlier on Tuesday, EMC said it will enhance its Symmetrix enterprise-class storage arrays with RSA security technology and that similar enhancements are planned for its other storage products.

Rich Welch, vice president and general manager of data security solutions at RSA, said other recent events are heightening awareness of data encryption and RSA's interest in expanding its technology and products into that area. He cited the Payment Card Initiative, which specifies how companies that accept credit cards handle encrypted data, and states' adoption of laws that require companies to inform individuals and businesses whose private data was lost or stolen.

Down the road, RSA aims to work with vendor partners and others in the industry to develop standards for managing encryption keys, regardless of which technologies customers use, according to Welch.

"We're still working on it," he said. "Our goal is to eventually manage all the encryption keys with a single management interface under RSA. The most important part is to integrate with business applications to manage those keys."

NEXT: RSA aims to be one-stop data security source.